Thursday, September 09, 2010
New Zero-Day Attack Riddles Adobe Reader
Adobe software is everywhere. It's even more ubiquitous than Windows, and perhaps even more vulnerable to hacker schemes. The latest threat, which comes disguised as a golf lesson, consists of code that "can do almost whatever it wants," said ESET's Randy Abrams. "It can download malicious bots; it can load keystroke-tracking software, or any number of things."
<Snip>
The dangerous code is being unleashed via PDF files that users are enticed to open by a phishing email offering courses from David Leadbetter, a world-renowned golf instructor. When the PDF file is opened, it downloads a hidden program that attacks the user's system.
"This code can do almost whatever it wants," said Randy Abrams, director of technical education with ESET. "It can download malicious bots; it can load keystroke-tracking software, or any number of things."
http://www.technewsworld.com/story/70791.html?wlc=1284058573&wlc=1284099882